Expression of Interest Governance, Risk and Compliance

About the job Expression of Interest_ Governance, Risk and Compliance (GRC)

**Expression of Interest_ Governance, Risk and Compliance (GRC) Senior Manager / Principal Consultant**

Brisbane (preferred), flexible across Melbourne and Canberra.

**We Are Fujitsu**

We use technology to make happier lives. We are a global leader in technology and business solutions that transform organizations and the world around us. We have a long heritage of bringing innovation and expertise, continuously working to contribute to the growth of society and our customers.

**About the Role**

We are looking for a Governance, Risk and Compliance (GRC) Senior Manager / Principal Consultant to join our team and partner with a highly skilled team to provide real-time security advice and guidance to uplift our client's cyber posture.

You will help our clients:

- Develop and embed cyber security policy in alignment with industry frameworks and standards e.g. ISM, PSPF, Essential 8, NIST, ISO27001 / 27002, etc.
- Undertake compliance assessments in alignment with policy and industry standards,
- To quantify, understand, and manage security risks,
- Uplift the cyber security stance and protect their systems,
- Develop meaningful risk reporting.
- Assist client with the security authorisation of their systems

Brisbane location is preferred but also flexible across Melbourne and Canberra.

**Responsibilities**:
With mínimal oversight:

- Authoring security policy, process improvement, and security documentation artifacts,
- Undertaking compliance assessments against whole-of-government and industry standards,
- Creating threat models that reflect the unique context of an organisation and its in scope systems,
- Undertake risk assessments,
- Assisting with the uplift of cyber security posture and awareness to protect their systems and data.
- Collaborating with internal teams to ensure the understanding of security risks and proposing fit-for-purpose
- mitigations,
- Supporting the automation of collection and collation services for cyber reporting across multiple sources.
- Leading or supporting the team to deliver outcomes within scope, on time, on budget and to expected
- standards
- Manage your own workload to ensure client and company timelines are met.
- Consistently use the quality assurance process to deliver client results

**Mandatory Skills**:
**Cyber Security Frameworks & Compliance**
- Strong understanding of ISM, PSPF, Essential 8, NIST, ISO 27001/27002, and other relevant standards.
- Experience conducting compliance assessments and security audits.
- Ability to develop and embed cyber security policies aligned with industry best practices**.**

**Risk Management & Threat Modelling**
- Expertise in assessing, quantifying, and managing security risks.
- Proficiency in threat modelling tailored to organizational security needs.
- Capability to provide meaningful risk reporting and recommendations.

**Security Documentation & Policy Development**
- Experience in authoring security policies, process improvement plans, and security documentation.
- Ability to create clear and actionable security guidelines for organizations.

**Cybersecurity Posture & Awareness**
- Proven ability to uplift an organizations security stance.
- Skilled in training and improving security awareness across teams.
- Technical Knowledge & Compliance Reporting
- Strong understanding of security authorization processes for systems.
- Experience in automating cyber reporting across multiple sources.

**Required skills**
- Ability to work independently and with mínimal oversight.
- Strong communication skills to collaborate with teams and stakeholders.
- Critical thinking to assess security gaps and propose solutions.

**Why Fujitsu?**

We are an organization with a strong set of values and a history of respecting fairness and equality, whilst promoting diversity, equity, and inclusion. We constantly push ourselves to do better and strive to bring together a diverse mix of perspectives and talents in an inclusive environment, where we encourage our people to bring their full selves to work. We call this Be Completely You.
- **We put people first. We believe in the power of diversity to drive innovation and our AWEI (Australian Workplace Equality Index) Gold Employer status, and Rainbow Tick certification for LGBTI+ inclusion show that we value an inclusive culture.**:

- **We offer tailored career paths across our global organization to support your professional and personal growth.**:

- **Our customers trust us. We have an excellent reputation across the region and globally.**:

- **Best in-class reward and recognition programs flexible work, volunteering leave, and more.**:

- **We live our values of aspiration, trust, and empathy, all day, every day.**

**Commitment to Diversity, Equity and Inclusion**

**Search Firm Representatives PLEASE READ**: